Some information security professionals and attorneys advise their clients to conduct social engineering tests on their workforce to see how many will click on a link in an email or website without taking a moment to consider if the link is secure.

Two years ago, health security veteran Tom Walsh wasn’t one of them. Tricking employees, faking them out and making them feel foolish wasn’t the way to educate them on security, but was a good way to lose their trust, believed the president of tw-Security in Overland Park, Kan. Further, when employees’ superiors actually sent legitimate email, would they be opened by employees now spooked?

Register or login for access to this item and much more

All Digital Insurance content is archived after seven days.

Community members receive:
  • All recent and archived articles
  • Conference offers and updates
  • A full menu of enewsletter options
  • Web seminars, white papers, ebooks

Don't have an account? Register for Free Unlimited Access